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1. [2 This is a FIRST submission of items concerning a filing under 35 U.S.C. 371. 

2. [Z] This is a SECOND or SUBSEQUENT submission of items concerning a filing under 35 U.S.C. 371. 

3 IY1 This express request to begin national examination procedures (35 U.S.C. 371(f)) at any time rather than delay 
' LJ examination until the expiration of the applicable time limit set in 35 U.S.C. 371(b) and PCT Articles 22 and 39(1). 

4. H A proper Demand for International Preliminary Examination was made by the 1 9th month from the earliest claimed priority date. 

5. [Xj A copy of the International Application as filed (35 U.S.C. 371(c)(2)) 
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b. 00 has been transmitted by the International Bureau. 
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(35 U.S.C. 371(c)(5)). 
Items 11. to 16. below concern document(s) or information included: 

An Information Disclosure Statement under 37 CFR 1.97 and 1.98. 

An assignment document for recording. A separate cover sheet in compliance with 37 CFR 3.28 and 3.31 is included. 



11. 


□ 


12. 


GO 


13. 


m 




□ 


14. 


□ 


15 


□ 


16 





16. H Other items or information: International Preliminary Examination Report 
International Search Report 
Form PCT/IB/308 

Verified Statements Claiming Small Entity Status (2) 
Patent Data Entry Sheet 



526Rec'dPCTVPT0 04 MAY 2000 



P 97T7n775 l 



INTERNATIONAL APPLICATION N( 



PCT/FR98/02348 



17. @ The following fees are submitted: 
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Neither international preliminary examination fee (37 CFR 1.482) 
nor international search fee (37 CFR 1.445(a)(2)) paid to USPTO 
and International Search Report not prepared by the EPO or JPO 
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USPTO but International Search Report prepared by the EPO or JPO S840.00 
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International preliminary examination fee paid to USPTO (37 CFR 1.482) 
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Independent claims 



MULTIPLE DEPENDENT CLAIM(S) (if applicable) 
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Reduction of 1/2 for filing by small entity, if applicable. A Small Entity Statement 
must also by filed (Note 37 CFR 1 .9, 1.27, 1.28). 
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months from the earliest claimed priority date (37 CFR 1.492(f)). +_ 
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or credit any overpayment to Deposit Account No. 25-0120. A duplicate copy of this sheet 1S enclosed. 
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1.137(a) or (b)) must be filed and granted to restore the application to pending statur 
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VERIFIED STATEMENT CLAIMING SMALL ENTITY STATUS 
(37 CFR 1.9(f) & 1.27(b)} -INDEPENDENT INVENTOR 



Docket No. (Optional) 
PCT/FR98/02348 



Applicant or Patentee: Gilles KREMER 
Serial or Patent No.: 
Filed or Issued: 

Title: method for transmitting data and implementing server 

As a below named inventor, I hereby declare that I qualify as an independent inventor as defined in 37 CFR § 1.9(c) for 
purposes of paying reduced fees to the Patent and Trademark Office described in: 



the specification filed herewith with title as listed above, 
the application identified above, 
the patent identified above. 



I have not assigned, granted, conveyed or licensed and am under no obligation under contract or law to assign, grant convey or 
license, any rights in the invention to any person who would not qualify as an independent inventor under 37 CFR § 1.9(c) if 
thafiperson had made the invention, or to any concern which would not qualify as a small business concern under 37 CFR 
§iyjjd} or a nonprofit organization under 37 CFR § 1.9(e). 

Eaclij person, concern or organization to which I have assigned, granted, conveyed, or licensed or am under an obligation under 
contact or law to assign, grant, convey, or license any rights in the invention is listed below: 



No such person, concern, or organization 

Each such person, concern or organization is listed below. 

Magic Axess 
^ 28 rue Jean Jaures 

;={ 92800 Puteaux, France 

Separate verified statements are required from each named person, concern or organization having rights to the invention averring to their status as small 
entities. (37 CFR §1.27) 

1 acknowledge the duty to file, in this application or patent, notification of any change in status resulting in loss of entitlement to small entity status 
prior to paying, or at the time of paying, the earliest of the issue fee or any maintenance fee due after the date on which status as a small entity is no 
longer appropriate. (37 CFR 11.28(b)) 

I hereby declare that all statements made herein of my own knowledge are true and that all statements made on information and belief are believed to 
be true; and further that these statements were made with the knowledge that willful false statements and the like so made are punishable by fine or 
imprisonment, or both under Section 1001 of Title 18 of the United States Code and that such willful false statements may jeopardize the validity of the 
application or any patent issuing thereon, or any patent to which this verified statement is directed. 



NAME OF INVENTOR 




NAME OF INVENTOR 



NAME OF INVENTOR 



nato ' 



Signature of inventor 



Signature of inventor 



VERIFIED STATEMENT CLAIMING SMALL ENTITY STATUS 
(37 CFR1.9(f) & 1.27(c))-SMALL BUSINESS CONCERN 



Docket No.(optional) 
PCT/FR98/02348 



Applicant or Patentee: Gilles KREMER 

Serial or Patent No.: 
Filed or Issued: 

Title: METHOD FOR TRANSMITTING DATA AND IMPLEMENTING SERVER 
I hereby declare that I am 

the owner of the small business concern identified below. 

an official of the small business concern empowered to act on behalf of the concern identified below. 
NAME OF SMALL BUSINESS CONCERN Magic Axess 

ADDRESS OF SMALL BUSINESS CONCERN 28 rue Jean Jaures, 92800 Puteaux, France 

I hereby declare that the above identified small business concern qualifies as a small business concern as defined in 13 CFR 121.12, are reproduced in 37 CFR 1.9(d), 
©purposes of paying reduced fees to the United States Patent and Trademark Office, in that the number of employees of the concern, including those of its affiliates, 
dUs not exceed 500 persons. For purposes of this statement, (1) the number of employees of the business concern is the average over the previous fiscal year of the 
yijcern of the persons employed on a full-time, part-time or temporary basis during each of the pay periods of the fiscal year, and (2) concerns are affiliates of each other 
iipn either, directly or indirectly, on concern controls or has the power to control the other, or a third party or parties controls or has the power to control both. 

t\ I hereby declare that rights under contract or law have been conveyed to and remain with the small business concern identified above with regard to the invention 
described in: 

X tne specification filed herewith with title as listed above, 
the application identified above. 
W the patent identified above. 

pi If the rights held by the above identified small business concern are not exclusive, each individual, concern or organization having rights in the 
jffifention must file separate verified statements averring to their status as small entities, and no rights to the invention are held by any person, other 
ffian the inventor, who would not qualify as an independent inventor under 37 CFR 1.9(c) if that person made the invention, or by any concern which 
would not qualify as a small business concern under 37 CFR 1.9(d), or a nonprofit organization under 37 CFR 1.9(e). 

Each person, concern or organization having any rights in the invention is listed below: 



no such person, concern, or organization exists, 
each such person, concern, or organization is listed below. 
Separate verified statements are required from each named person, concern or organization having rights to the invention averring to their status as small entities. (37 CFR 
§1.27) 

I acknowledge the duty to file, in this application or patent, notification of any change in status resulting in loss of entitlement to small entity status prior to paying, or at 
the time of paying, the earliest of the issue fee or any maintenance fee due after the date on which status as a small entity is no longer appropriate. (37 CFR 11.28(b)) 

I hereby declare that all statements made herein of my own knowledge are true and that all statements made on information and belief are believed to be true; and further 
that these statements were made with the knowledge that willful false statements and the like so made are punishable by fine or imprisonment, or both under Section 
1001 of Title 18 of the United States Code and that such willful false statements may jeopardize the validity of the application, any patent issuing thereon, or any patent 
to which this verified statement is directed. 

NAME OF PERSON SIGNING 

TITLE OF PERSON IF OTHER THAN OWNER . . 

ADDRESS OF PERSON SIGNING ^ „ {—- 
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PATENTS 



IN THE UNITED STATES PATENT AND TRADEMARK OFFICE 
In re application of 
Gilles KREMER 
Serial No. (unknown) 
Filed herewith 

METHOD FOR TRANSMITTING DATA 
AND IMPLEMENTING SERVER 



of the filing fee, please amend the above- identified applica- 
tion as follows: 

IN THE CLAIMS : 

Cancel claim 2 . 
Cancel claim 3 . 
Cancel claim 5. 
Cancel claim 6. 
Cancel claim 7. 
Cancel claim 8. 
Cancel claim 9 . 

Claim 11, lines 1 and 2, change "one of claims 
1-10," to --claim 1,--. 

Claim 12, lines 1 and 2, change "one of claims 
1-11," to --claim 1,--. 

Claim 13, lines 1 and 2, change "one of claims 



PRELIMINARY AMENDMENT 



Assistant Commissioner for Patents 



Washington, D.C. 20231 



Sir : 



Prior to the first Official Action and calculation 



Gilles KREMER 



1-12," to --claim 1,--. 

Claim 14, lines 1 and 2, change "one of claims 
1-13," to --claim 1,--. 

Claim 15, lines 1 and 2, change "one of claims 
1-14," to --claim 1,--. 

Claim 16, lines 1 and 2, change "one of claims 
1-15," to --claim 1,--. 

Claim 17, lines 1 and 2, change "one of claims 
1-16," to --claim 1,--. 

Claim 18, lines 1 and 2, change "one of claims 
1-17," to --claim 1,--. 

Claim 20, lines 1 and 2, change "one of claims 9 or 
19," to --claim 9,--. 

Claim 21, lines 1 and 2, change "one of the claims 
9, 19 or 20," to --claim 9,--. 

Claim 22, lines 1 and 2, change "one of claims 1 to 

21, " to --claim 1,--. 

Claim 23, lines 1 and 2, change "one of claims 1 to 

22, " to --claim 1,--. 

Claim 25, lines 1 and 2, change "one of claims 1 to 
24," to --claim 1,--. 

Cancel claim 28. 
Cancel claim 29. 
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Gilles KREMER 



Add the following new claims: 

30.. Procede de transmission d'un message electronique securise 

com porta nt : 

- une operation de reception par un systeme de traitement 
d' information, en provenance d'un utilisateur, par I'intermediaire d'un reseau de 
communication : 

. du message a transmettre, 

. d'un identifiant de I' utilisateur, et 

. d'un identifiant d'un destinataire dudit message (603, 604) ; 

- une operation d'ouverture d'une session de communication entre un 
moyen de communication situe a distance correspondant a I' identifiant du 
destinataire dudit message, et le systeme de traitement d' information ; 

- une operation de generation, par ledit systeme de traitement 
d' information, d'une premiere information dite « confidentielle » a usage unique, 
c'est-a-dire ne pouvant etre utilisee que pendant ladite session de communication ; 

et, durant ladite session de communication : 

une operation de transmission, par le systeme de traitement 
d' information, de la premiere information confidentielle par I'intermediaire d'un 
premier support de transmission (605), 

une operation de reception, par le systeme de traitement 
d' information, de ladite premiere information confidentielle en provenance d'un 
deuxieme support de transmission different du premier support de transmission 
(608), 

une operation de verification de la premiere information 
confidentielle (610), par ledit systeme de traitement d' information, et 

si la premiere information confidentielle est verifiee, une 
operation de fourniture du message securise. par le systeme de traitement 
d' information, au moyen de communication situe a distance correspondant a 
I'identifiant du destinataire dudit message. — 

Respectfully submitted, 
THOMPSON / 




Thomas W. jerkins 
Attorney for Applicant 
Registration No. 33,027 
745 South 23rd Street 
Arlington, VA 222 02 
May 4, 2000 Telephone: 703/521-2297 
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PROCESS FOR THE TRANSMISSION OF INFORMATION 
AND SERVER USING IT 

The present invention relates to a process for the 
transmission of information and a computer server using it. 
It permits ensuring that the person operating a terminal is an 
authorized or entitled person. It applies in particular to 
the verification of the identity of the person which has 
access to a remote service, no matter what terminal is used. 
It permits authenticating the identification of the user, 
authenticating the transaction, verifying the integrity of 
this transaction by completing it with the amount of said 
transaction, the quantity bought, the name of the product or 
service acquired, thereby to permit the payment for goods or 
services, on line, which is to say in the course of a communi- 
cation between remote computer systems. 

The fields of application of the invention are for 
example the control of access, the provision of confidential 
information to the proper party, the certification of transac- 
tions or payment for goods or services on a computer network. 

The practice of remote transactions on a network 
poses, independently of encryption, the problem of authentica- 
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tion of the person doing it, of the integrity of the transac- 
tion and of its confidentiality. In numerous applications 
(electronic commerce, remote banking, telecommuting, internal 
security of enterprises, security of for-pay databases, for 
example) and on all supports (local or remote computer 
networks, for example, respectively, the community networks 
called "Intranet" or "Internet", voice servers, for example), 
this problem is crucial. 

The security devices and processes known to the 
prior art, like those disclosed in U.S. Patent 5,442,704, 
which use a memory card, impose important and costly material 
constraints . 

Other software devices, based on encryption systems, 
ensure the confidentiality of the data without guaranteeing 
the authentif ication of the person. 

Other devices using an authentif ication means, known 
as an "authentif ier" or a "token", which computes from data 
received in the course of a transaction and from a secret key 
which it keeps in its memory, a dynamic password. These 
devices again require important and costly material con- 
straints . 

The present invention seeks to remedy these draw- 
backs. To this end, the present invention provides for the 
combined use of at least two communication networks. 

In other words, the present invention proposes the 
transmission, to a user of a first communication support, of 
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confidential information, on a second information support, 
preferably secured, with: 

- a mechanism for synchronizing two communications 
on the two networks, and 

- a return operation, from one communication support 
to the other, under the initiative of the user, by preferen- 
tial manual acquisition, of confidential information received 
on the other support . 

To this end, the present invention provides, 
according to a first aspect, a process for the transmission of 
data on a first transmission support, characterized in that it 
comprises : 

- an operation of opening a communication session 
with a remote communication means, on said first transmission 
support , 

and, during said session: 

an operation of receiving confidential information 
on a terminal with a single address on a second transmission 
support , and 

a transmission operation, on the first transmis- 
sion support, of a confidential message representing said 
confidential information. 

The present invention provides, according to a 
second aspect, a process for the transmission of information 
on a first transmission support, characterized in that it 
comprises : 
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- an operation of opening, by means of a terminal 
with a single address on said first transmission support, a 
communication session with a remote communication means, 

and, during said session: 

. an operation of receiving confidential information 
on the first transmission support, and 

. an operation of transmission, on a second trans- 
mission support, of a confidential message representative of 
said confidential information. 

The present invention provides, according to a third 
aspect, a process for the transmission of information on a 
first communication support, characterized in that it compris- 
es : 

- an operation of opening, by means of a first 
terminal, a communication session with a remote communication 
means, on said first communication support, 

- an operation of opening, by means of a second 
terminal, a communication session with a remote communication 
means, on a second communication support, 

- when the two session are open, an operation of 
receiving confidential information on said communication 
supports on which one of the terminals has a single address, 
and 

- an operation of transmission, on another of said 
communication supports, of a confidential message representing 
said confidential information. 



WO 99/23617 PCT/FR98/02348 

The present invention provides, according to a 
fourth aspect, a process for the transmission of information 
on a first transmission support, characterized in that it 
comprises : 

- an operation of opening a communication session 
with a remote communication means, on said first transmission 
support , 

and, during said session: 

an operation of generating confidential informa- 
tion and transmitting said confidential information on a 
second transmission support to a terminal having a single 
address on the second support, 

an operation of receiving, on the first transmis- 
sion support, a confidential message adapted to be representa- 
tive of said confidential information, and 

an operation of verifying the correspondence 
between said confidential message and said confidential 
information . 

The present invention provides, according to a fifth 
aspect, a process for the transmission of information on a so- 
called "second" transmission support, said transmission 
support forming a part of a communication network, character- 
ized in that it comprises: 

- an operation of receiving, from a so-called 
"second" terminal, a first message representing: 
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an identifier of a so-called "third" terminal 
having a single address on said network, 
. confidential information, 

. information representative of the amount of the 
transaction, 

- a transmission operation, to the third terminal, 
of a second message representing: 

. said confidential information and 
. said amount, 

- an operation of receiving a third message, from 
said second terminal, representing a transaction validation, 
and 

- an incrementation operation of a register corre- 
sponding to said third terminal, by a value representative of 
said amount of the transaction. 

The present invention provides, according to a sixth 
aspect, a process for the transmission of information on a so- 
called "second" transmission support, said transmission 
support forming a part of a communication network, character- 
ized in that it comprises: 

an operation of receiving, from a so-called 
"second" terminal, a first message representative: 

. of an identification of said "third" terminal 
having a single address on said network, 

. confidential information, 
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information representative of an amount of a 

transaction, 

- a transmission operation, to the third terminal, 
of a second message representative: 

. of said confidential information and 
. of said amount, 

- an operation of receiving a third message, from 
said second terminal, representative of a validation of a 
transaction, and 

- an operation of incrementing a register corre- 
sponding to said third terminal, by a value representative of 
a duration of the first session. 

It will be noted that, according to the fifth and 
sixth aspects of the invention, the incrementation operation 
can take place before or after the operation of receiving the 
third message. 

The present invention provides, according to a 
seventh aspect, a process for the transmission of information 
on a so-called "second" transmission support, said transmis- 
sion support forming a part of a communication network, 
characterized in that it comprises: 

- an operation of receiving, from a so-called 
"second" terminal, a first message representative: 

of an identification of a so-called "third" 
terminal having a single address on said network, 
. of confidential information, 
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. of information representative of an amount of a 
transaction, 

an operation of transmitting, to the third 
terminal, a second message representative: 

. of said confidential information and 
. of said amount, 

an operation of incrementation of a register 
corresponding to said third terminal, by a predetermined 
value . 

The present invention provides, according to an 
eighth aspect, a process for the transmission of information, 
between a first terminal and a second terminal, on a first 
transmission support belonging to a communication network, 
characterized in that it comprises: 

- an operation of opening a communication session, 
on the first transmission support, between the first terminal 
and the second terminal , and 

- an operation of transmitting, from the second 
terminal to a third terminal connected to a second network and 
having a single address on said second network, a first 
message representative of confidential information, 

an operation of transmitting, to the third 
terminal, a second message representative of said confidential 
information, and 

an operation of transmitting, on the first 
transmission support, from the first terminal and to the 
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second terminal, of a message representative of confidential 
information . 

In each of the aspects of the present invention, the 
user, on the one hand, and the transaction, on the other hand, 
are thus authenticated because the transmission of confiden- 
tial information, at the initiative of the user, proves his 
identity by the reception of this confidential information. 
Moreover, the engagement of the user in the two communica- 
tions, proves the use of the two terminals, simultaneously, by 
the same user. 

When one of the used networks is a mobile communica- 
tion network, the practice of the invention is entirely 
portable, which is to say that it can be applied no matter 
where, by the user of the mobile communication network. 

Moreover, the invention can be practiced with no 
matter what terminals and is independent of the material used. 
It does not require any adaptation of existing terminals, nor 
modification, nor addition of peripherals. 

The simplicity of the practice of the present 
invention renders the tasks of authentication, billing and 
payment intuitive, and it does not require any apprenticeship. 

It will also be noted that the confidential informa- 
tion can be a password or a transaction certificate. 

According to particular characteristics of each of 
the aspects of the present invention described above: 
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- the confidential information is representative of 
a pseudo- random number, 

- the confidential information is representative of 
a session number attributed to a session, 

- the confidential information is representative of 
the identity of the user, 

- the confidential information is representative of 
one or several bank and/or card account numbers, 

- the confidential information is representative of 
the time and date of said operation of opening the session, 
and/or 

- the confidential information is modified at each 
of the sessions. 

Thanks to each of these arrangements, the confiden- 
tial information is renewed at each session and its use is 
limited to a single communication session. 

According to particular characteristics of each of 
the aspects of the invention set forth above: 

- in the course of the reception operation of 
confidential information on a terminal with a single address 
on a second communication support, there is received moreover 
an amount of the transaction, and/or 

- in the course of operation of transmission of a 
confidential message representative of confidential informa- 
tion, there is moreover transmitted an amount of the transac- 
tion . 
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Thanks to each of these arrangements, the invention 
permits transactions using financial amounts, such as purchas- 
es, reservations, exchanges, loans, mortgages, guarantees ... 

According to a ninth aspect, the present invention 
provides a process for the transmission of information on a 
first communication support which is part of a communication 
network, characterized in that it comprises: 

- an operation of receiving, from a first terminal, 
a first message representative: 

. of an amount of an envisaged transaction, 
of an identification of the debtor, 

- a transmission operation, on a second communica- 
tion support, to a bank server, of a second message represen- 
tative : 

. of said amount, 

of an identification of said debtor 
. of a demand for approval of the debit, 

- an operation of receiving or not from said bank 
server, a third message representative of an authorization of 
the debit, 

- when the authorization is approved, an operation 
of transmission, to a second terminal having a single address 
on the second communication network, of a fourth message 
representative of confidential information, 
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- of a reception operation, from said first termi- 
nal, of a fifth message representative of said confidential 
information, 

- of an operation of verifying the correspondence 
between the confidential message and the confidential informa- 
tion . 

This ninth aspect of the present invention has the 
same advantages as the first and second aspects. These 
advantages are not repeated here. 

According to particular characteristics of each 
aspect of the invention, after the operation of verifying the 
correspondence, in the case of correspondence, the process 
provided by the present invention, as set forth succinctly 
above, comprises an operation of incrementing from one account 
to the debit of said debtor. 

Thanks to these arrangements, a statement 
corresponding to each amount of the transaction carried out by 
the debtor, can be sent to him. 

According to other particular characteristics of 
each of the processes envisaged by the different aspects of 
the present invention, this process comprises, after the 
operation of receiving the first message, an operation of 
reading, in a database, of the single address of the second 
terminal on the second network. 
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Thanks to these arrangements, the debtor need only 
furnish this address, on the one hand, and this address is 
certified, on the other hand. 

According to other particular characteristics of 
each of the processes envisaged by each of the different 
aspects of the present invention, this process comprises, 
after the operation of receiving the first message, a reading 
operation, in a database, of an identification of said bank 
server . 

Thanks to these arrangements, the debtor need not 
supply this identification, nor a bank card, on the one hand, 
and this identification can be preliminarily verified, on the 
other hand. 

According to a second aspect, the present invention 
provides a process for the transmission of information on a 
first communication support forming a portion of a communica- 
tion network, characterized in that it comprises: 

- an operation of receiving, from a first terminal, 
a first message representative: 

. of the amount of a proposed transaction, 
. of an identification of a debtor, 

- an operation of authorizing or not a debit on a 
bank account , 

- when the authorization is approved, an operation 
of transmission, to a second terminal having a single address 
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on a second communication network, of a second message 
representative of confidential information, 

- a reception operation, from said first terminal, 
of a third message representative of said confidential 
information, 

an operation of verifying the correspondence 
between the confidential message and the confidential 
information, and 

in the case in which the correspondence is 
verified, an operation of debiting said amount on said bank 
account . 

According to particular characteristics of each of 
the aspects of the process provided by the present invention, 
the latter comprises an operation of manual acquisition, in 
the course of which the user acquires a confidential message 
representative of the confidential information. 

Thanks to these arrangements, the engagement of the 
user is guaranteed by the manual acquisition which he carries 
out . 

According to particular characteristics of each of 
the aspects of the process provided by the present invention, 
the latter comprises an operation of selection of transmis- 
sion, in the course of which, of a function of predetermined 
criteria, the transmissions are classified into two groups, 
one relating to so-called "security" transmission and the 
other to so-called "normal" transmissions, the normal trans- 
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missions requiring no more than one transmission operation on 
a communication support. 

Thanks to these arrangements, the process provided 
by the present invention is practiced only for a portion of 
the transmissions, as a function of predetermined criteria. 

According to particular characteristics of each of 
the aspects of the process provided by the present invention, 
in the course of said selection operation, there is used a 
transaction limit amount, the so-called "secured" transmis- 
sions being those with which are associated the higher 
transaction amounts than said limit amount. 

Thanks to these arrangements, the criterion of 
selection of the transmissions which are secured by the 
practice of the present invention are those which relate to 
transaction amounts greater than the limit amount. 

According to particular characteristics of each of 
the aspects of the process provided by the present invention, 
the latter comprises a transmission operation of a single 
address on one of said networks. 

According to particular characteristics of each of 
the aspects of the process provided by the present invention, 
in the course of said transmission operation of a single 
address, there is transmitted a certificate containing 
information representative of said single address. 

Thanks to each of these arrangements, it is the user 
himself or, respectively, his computer, which, in an encrypted 
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mode or not, transmits on one of the networks a single address 
which it has on one of the networks that is used. 

According to particular characteristics of each of 
the aspects of the process provided by the present invention, 
said certificate responds to a security protocol for payment 
and comprises information representative of said single 
address . 

Thanks to these arrangements, the single address 
transmitted with the certificate is protected by the security 
payment protocol . 

The present invention also provides a memory, 
erasable or not, which contains instructions of a program 
adapted to be executed by a processor and adapted to use the 
transmission process as succinctly set forth above. 

The present invention moreover relates to a computer 
server, characterized in that it is adapted to use the 
transmission process as succinctly set forth above. 

This tenth aspect, this server and this memory 
having the same particular characteristics and the same 
advantages as the nine first aspects of the present invention, 
set forth above, the latter are not repeated here. 

Other advantages, objects and characteristics of the 
present invention will become apparent from the description 
which follows, given with respect to the accompanying draw- 
ings, in which: 
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- Figure 1 is a diagram of the principle of the 
process of the present invention; 

- Figure 2 is a particular diagram for the practice 
of the present invention; 

- Figure 3 shows the system architecture adapted to 
support the practice of the present invention; 

- Figure 4 shows a succession of generic operations 
used by the elements shown in Figures 2 and 3 ; 

- Figure 5 shows a succession of operations used by 
the elements shown in Figures 2 and 3, in the framework of the 
application of the present invention to authentication; and 

- Figure 6 shows a series of operations used by the 
elements shown in Figures 2 and 3, in the framework of a use 
of the present invention for the certification of messages; 

- Figure 7 shows a sequence of operations used by 
the elements shown in Figures 2 and 3, in the framework of the 
application of the present invention to electronic line 
payment, in the case of service without a contract; 

- Figure 8 shows a sequence of operations practiced 
by the elements shown in Figures 2 and 3, in the framework of 
the use of the present invention for electronic on-line 
payment, in the case of contract service; 

- Figure 9 shows a sequence of operations practiced 
by the elements shown in Figures 2 and 3, in the framework of 
the use of the present invention for payment with a known 
electronic payment terminal; 
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- Figure 10 shows a sequence of operations practiced 
by the elements shown in Figures 2 and 3, in the framework of 
another application of the present invention to electronic on- 
line payment with a third party guarantor, in the case of non- 
contract service; 

- Figure 11 shows schematically communications of 
messages practiced by the use of the present invention in 
combination with a known payment protocol under the name of 
" SET" (acronym of "Secure Electronic Transaction") 

- Figure 12 shows schematically communications of 
messages practiced by the use of the present invention in 
combination with a payment protocol known to those skilled in 
the art under the name Globeld (trademark) or Kleline (trade- 
mark) ; and 

- Figure 13 shows schematically communications of 
messages used in an application of the present invention in 
combination with a known secured communication protocol under 
the name of "SSL" (acronym of "Secure Socket Level") . 

In Figure 1 are shown: 

- a first network 10, 

- a first terminal 11 of the first network, 

- a second network terminal, also called hereinafter 
"data and message server" 40, 

- a second network 20, 

- a third terminal 21 of the second network, and 

- a data server 30. 
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According to the invention, the user of the first 
terminal 11 is identified by his single address on the second 
network 20. 

The latter is preferably secured, which is to say 
that each address is there certified by a third party guaran- 
tor, and, moreover, the information transmitted is confiden- 
tial. The third person in question is preferably a telephone 
operator, or, more generally, any organization which has a 
database for the user of a single address terminal. 

The terminal of the first network 11 can be for 
example a telephone, a computer terminal, a telecopier, a 
telematic terminal, a televisor provided with a box adapted to 
receive and emit computer data (a box commonly called a 
television decoder) , an electric payment terminal (Figure 2) . 

The terminal 21 of the second network can for 
example be a telephone, a telecopier, a telematic terminal, a 
television decoder, a mobile telephone or a message receiver 

("pager") or a personal digital assistant (commonly called 

"PDA") . 

In a first embodiment of the present invention, in 
a first instance, the user uses the terminal 11 of first 
network 10 to enter into communication with the data server 
30. He thus opens a communication session between terminal 11 
and the second terminal 4 0 of the network. Then, the informa- 
tion server 30 supplies confidential information to the user, 
by means : 
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- of the server 4 0 of data and messages, 

- of the second network 20, and 

- of the terminal 21 of the second network. 
Finally, the user receives confidential information 

at the level of the terminal 21 of the second network and 
carries out a manual acquisition of a confidential message, 
constituted here by confidential information, to transmit it 
to the information server 30, in the course of the same 
session, by means: 

- of the terminal 11 of the first network and 

- of the first network 10. 

The data and message server 4 0 then verifies the 
correspondence of the confidential message and the confiden- 
tial information, which is to say whether the confidential 
message is representative of the confidential information, 
and, in case of correspondence, it gives access to the 
particular services, of confidential or of payment. 

The user, on the one hand, and the transaction, on 
the other hand, are thus authenticated because the manual 
acquisition proves the identity of the user who receives the 
confidential information as well as simultaneous use of the 
two terminals by the same user. 

In Figure 2 are shown: 

- a first terminal, called "user" 100 connected to 
a first communication support 101 forming a portion of the 
communication network; 
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- an information server 103, connected to the first 
information support 101; 

- a data server 105, connected by a telecommunica- 
tion line 106 and/or a computer line 106 to the information 
server 10 3 ; 

- a message server 109, connected by a second 
communication support 110 to a receiver 111 and by a third 
communication support 113, to the data server 105; and 

- a contract database 107 connected to the message 
server 109 and to the data server 105. 

In the embodiment described and shown here, the user 
terminal 100 is a personal computer (commonly called "PC") or 
a network computer (commonly called "NC"), or else a Minitel 
(trademark) which comprises a modem connected to a wire 
telecommunication network, for example the community telephone 
network. The first communication support 101 is thus a 
channel of this telecommunication network. The user terminal 
10 0 uses communication software of known type, which permits 
it to communicate remotely with the information server 103, by 
means of the communication support. 

The information server 103, connected to the first 
information support 101, is a computer server of known type, 
which is here adapted to use a specific software, according to 
the invention (shown in one of Figures 4 to 13) . 

The data server 105 is a computer server of known 
type which operates as is indicated below, relative to the 
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information server 103, by means of the line 106, itself also 
of known type . 

The message server 10 9 is a computer system of known 
type which manages one or more communication networks of the 
known type, a channel of one of these networks constituting a 
second communication support. A specialized channel supplies 
the third support 113 for communication between the informa- 
tion server 103 and the message server 109. 

The contract database 107 is a memory register of 
known type . 

It will here be noted that the contract database 107 
can be connected directly to several computer systems: 

- to that of the service supplier in the case of a 
network external to a business, in particular in certain cases 
for the use of the present invention with a contract prelimi- 
nary to the user of the service. 

- in business, in the case in which the network is 
internal to the business, 

- to one of a bank or a guarantor, in particular in 
the case of use of the invention without a contract. 

Finally, in certain cases, the database is not 
necessary, the single address on the second network being 
supplied, on the first network, either by a certificate or 
payment stored in the station (or "computer") client, or by 
the user himself. 
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The second communication support 110 is a communica- 
tion network of known type. On this second network, each 
receiver has a single address which is certified at the time 
of attribution of the address from the receiver 111. 

The receiver 111 is, in the embodiment described and 
shown here, a portable telephone (commonly called "mobile") or 
a message receiver (commonly called "pager"), a telecopier or 
a fixed telephone or terminal provided with a modem. It is 
adapted to receive a confidential message and to place it at 
the disposition of the user, for example by display on a 
screen, spoken emission or printed on paper. As a modifica- 
tion, the information servers 103 and the message server 109 
are combined . 

It will here be observed that: 

- in the case in which the receiver 111 serves the 
user only as a receiver of confidential information without 
emitting a confidential message, it is not necessary that it 
permits emission on the network 110, 

- moreover, when, according to certain modifications 
of the present invention, the receiver 111 serves on the one 
hand to receive confidential information and on the other hand 
to admit a confidential message, it is necessary that it 
permits emission on the network 110. 

In Figure 3, there will be noted, in a material and 
software architecture permitting the use of the present 
invention : 
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- a computer terminal 3 01, 

- a computer network 3 02, 

- an information server 103, 

- a local network 3 04, 

- a data server 105, 

- a database 107, 

- a message server 109, 

- a network 3 08, 

- a diffusion means 309, 

- a radiotelephone network 310, 

- a cell phone network 311, 

- an alphanumeric message receiver 312 (called a 

"pager" ) , 

- a mobile phone 313, 

- a switched network 314, and 

- a telephone or telecopier 315. 

The computer terminal 301 is for example a 
microcomputer known by the term "PC". It comprises a modem 
permitting communication by emission and reception, with the 
computer network 302. The computer network 302 is in this 
case the worldwide computer network known by the term 
"Internet". The information server 103 is of known type for 
the practice of supplier sites of services on the network 302. 

The local network 304 is of known type. It is a 
business network, for example of the LAN Manager (trademark) 
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Netware (trademark of the NOVELL company, this name also being 
a trademark) . 

The data server 105 and message server 109 are of 
known types. The database 107 is of known type. 

The network 3 08 is of known type, for example of the 
digital network with service integration ("DNSI"). 

The diffusion means 309 is a hertzien emitter of a 
type known for the use of the mobile communication network 
310. It is for example cellular or by satellite. 

In the embodiment described and shown in Figure 3, 
at least one of the three following communication networks is 
used : 

- the radiotelephone network 310 which permits only 
communication only in the direction of diffusion from an 
emitter toward alphanumeric message receivers such as the 
receiver 312, without these being able to emit long distance 
signals , 

- the mobile telephone network 311, permitting 
communication in particular with mobile phones, such as the 
telephone 313, and 

- a switched network 314 here permitting the 
communication with a fixed telephone or fixed copier 315. 

These three networks operate under contract, with 
certification of the identity of the contracting party. On 
each of these networks, the receiver has a single address, 
which is to say that the address which is attributed to it is 
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not attributed to another receiver (except in certain cases of 
group contracts required by the user) . This single address is 
embodied by a telephone number and/or an SIM card number 
(acronym of "Subscriber Identity Module"), which module 
secures the identification of the portable, for example, in 
the case of a mobile telecommunication network known by the 
name "GSM" (acronym of "Global System for Mobile"). 

It will here be observed that the apparatus adapted 
to function on the GSM network utilizes a microprocessor card. 
This card supplies the particular modes of the invention which 
permit it to operate with double security. 

In the case shown in Figure 3, it is preferably the 
same user who uses the computer terminal 3 01, on the one hand, 
and the alphanumeric receiver 312, the mobile phone 313, the 
fixed telecopier or the fixed telephone, on the other hand. 

Figures 4 to 9 show the different applications of 
the present invention, using the same formula: in each of 
these figures, the operations are shown from top to bottom, in 
the order of their chronological succession. In these figures 
are shown: 

- in the vertical column to the left and in the form 
of rectangles, the operations carried out by the user, using 
either the terminal connected to the first communication 
support ("terminal A") or the terminal connected to the second 
communication support ("terminal B"), the terminal used being 
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inscribed in a lozenge with which the rectangular representing 
the operation in question is superposed; 

- in a central column, successive transmissions of 
information on one or the other communication support ("A" for 
the computer network 302 or "B" for the telecommunication 
network for the networks 308, 310, 311 and/or 314) , in the 
form of arrows whose direction corresponds to the direction of 
communication, which is to say the direction left to right, 
corresponding to the direction user toward server and the 
direction right to left corresponds to the direction server to 
user . 

It will be here be noted that for each transmission 
of information, several signals can be exchanged between the 
electronic system used (synchronization, selection of communi- 
cation protocol , information, redundancies, acknowledgement of 
transmission, retransmission in case of transmission error, 
...). According to these arrows, the server "A" corresponds 
to the first network and the server "B" to the second network ; 

- on a vertical column more to the right than the 
two preceding ones (the right-most in Figures 4 to 6 and 9) , 
in the form of rectangles, the operation is carried out by 
data server 10 5; and 

- in Figures 7, 8 and 10, in a vertical column 
located right-most, a server placed in communication with the 
data server 105. 
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In Figure 4, there will be noted a sequence of 
operations used in certain applications of the invention, by 
the elements illustrated in Figures 2 and 3: 

- in the course of an operation 200, the user of the 
user terminal 101 enters into communication with the informa- 
tion server 103, by means of the first communication support. 
In the course of this operation 200, it supplies a unique 
identifier (for example a subscriber number, a name or 
physical address) ; 

- in the course of operation 2 01, the information 
server 103 attributes a unique session number upon 
reconnection of the "user" terminal 100 to the information 
server 103. In the course of this operation 201, the informa- 
tion server 103 transmits the identifier to the data server 
10 5 ; 

- in the course of operation 202, the data server 
105 computes confidential information also called hereafter 
"secret", to the message server 109. To this end, the data 
server 105 calculates the secret as being a representation of 
an algorithm function using an invariable (which is to say a 
value which does not vary from one session to the other, as an 
identifier, for example) , a variable (which is to say a value 
which varies with each session) , to avoid repetitions (session 
number for example) and a time marker (which is to say a clock 
value) so as to limit the use of a secret time-wise. Prefera- 
bly, it uses a function for working out confidential informa- 
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tion (or "secret"), which is irreversible, which is to say 
from which input information can be retrieved only when the 
output information is known. For the practice of operation 
2 02, the reader could refer to well-known security algorithm 
books, in particular to the descriptions of the functions 
known as "hashing", "Message Digest", and " SHA" ; 

- the operation 203 takes several different forms 
according to the identifier which is already in the database 
or not: if so, the single address there is read; in the 
negative, recourse is had to a confidential third person, who 
is, in this case, the operator of the second network or any 
other organism entitled to play the role of a confidential 
third party; 

- in the course of operation 204, the unique address 
of the receiver 111 is determined: it is representative, in 
the database 107, of the identifier transmitted by the 
information server 103 to the message server 109, in the 
course of operation 203; 

- in the course of operation 204, the message server 
109 transmits, by means of the network 110, the confidential 
information transmitted in the course of operation 203 to the 
receiver 111 which possesses said unique address, - 

- in the course of operation 207, the confidential 
information, here also called "secret", is supplied to the 
user, either by being displayed on the display of the receiver 
111, or by being given in a vocal or telecopied manner; 
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- in the course of operation 208, the user supplies 
to the information server 103, which itself transmits to the 
data server 105, a confidential message representative of the 
confidential information (for example identical to this 
confidential information or "secret"), by means of the user 
terminal keyboard 10 0; 

- in the course of operation 205, the information 
server 103 receives this confidential message ; 

- in the course of test 210, the data server 105 
determines whether the confidential message is representative 
of the confidential information generated by the data server 
105, in the course of the operation 202, or not; 

- when the result of test 210 is negative, the data 
server 105 transmits, to the user, an error message, by 
stating if desired a cause of the mishap (too much time 
elapsed between the transmission of confidential information 
and its reception, ...) and the access to the protected 
resources refused to the user. 

Finally, the course of the session opened on the 
first communication support is of known type, but thanks to 
the use of the present invention, the user is precisely 
authenticated . 

It will here be noted that, even if the secret were 
to be known, because this secret corresponds to a unique 
session numeral attributed dynamically by the information 
server 103 and because the session remains open (connected 
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mode) until the secret is sent, this secret could not be used 
to carry out fraudulent operations. Thus, any new open 
session will then be attributed to another secret. 

In Figure 5, there will be noted a sequence of 
operations used by the elements shown in Figures 2 and 3, in 
an application of the invention to the authentication, by 
access to protected data: 

- in the course of an operation 500, the user of the 
user terminal 101 enters into communication with the informa- 
tion server 103, by means of the first communication support. 
In the course of this operation 50 0, he supplies a unique 
identifier (for example a subscriber number, a name, or a 
physical address) ; 

- in the course of operation 501, the information 
server 103 attributes a unique session numeral upon connection 
of the user terminal to the information server 103. In the 
course of this operation 501, the information server 103 
transmits the identifier to the data server 105; 

- in the course of operation 502, the data server 
105 calculates confidential information also called in what 
follows "discardable password", to the message server 109. To 
this end, the data server 105 calculates the confidential 
information from an invariable (the identifier, for example) , 
of a variable to avoid repetitions (session number, for 
example) and of a time marker (clock) so as to limit the use 
of a secret time-wise. Preferably, it uses an irreversible 
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confidential information computation function, which is to say 
from which input information can be retrieved only when the 
output information is known. For the practice of this 
operation 102, the reader could refer to the books mentioned 
above ; 

- in the course of operation 504, the unique address 
of the receiver 111 is determined: it is representative, in 
the database 107, of the identifier transmitted by the 
information server 103 to the message server 109, in the 
course of operation 503 ; 

- in the course of operation 505, the message server 
109 transmits, by means of the network 110, the confidential 
information also here called "disposable password", in the 
course of operation 503 of the receiver which has said unique 
address ; 

- in the course of operation 507, the confidential 
information, also here called "discardable password" is 
supplied to the user, either by being displayed on the display 
of the receiver 111, or by being given in a verbal or 
telecopied manner; 

- in the course of operation 508, the user supplies 
to the information server 103, which itself retransmits it to 
the data server 105, a confidential message representative of 
the confidential information (for example identical to this 
confidential information, or "discardable password" ) , by means 
of the keyboard of the user terminal 100; 
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- in the course of operation 509, the information 
server 103 receives this confidential message; 

- in the course of test 510, the data server 105 
determines whether this confidential message is representative 
of the confidential information generated by the data server 
105, in the course of operation 503, or not; 

- when the result of test 510 is positive, the data 
server 105 invalidates the access to the protected informa- 
tion; 

- when the result of test 510 is negative, the data 
server 105 transmits an error and access invalidation message, 
by stating if desired a cause of failure (too much time 
elapsed between the transmission of the confidential informa- 
tion and its reception, ...) and access to the protected 
information is refused. 

Finally, the end of the session is of known type. 

In Figure 6, there will be noted a sequence of 
operations used by the elements shown in Figures 2 and 3, in 
an application of the invention to message certification: 

- following a session opening operation, not shown, 
between the user terminal 100 and the information server 103, 

- in the course of operation 601, the information 
server 103 attributes a unique session number; 

- in the course of an operation 600, the user of the 
"user" terminal 100 initiates, on the first communication 
support, a transaction procedure (for example inter-account 
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transfer, payment command or order) (see above with respect to 
Figure 4) ; 

- in the course of operation 603, the data server 
105 computes confidential information also called in what 
follows "certificate of message" from an invariable (the 
identifier, for example) , from a variable to avoid repetitions 
(session number, for example) and from a time marker (clock) 
so as to limit the use of a secret time-wise. Preferably, it 
uses an irreversible confidential information calculating 
function, which is to say information cannot be retrieved from 
the inlet when that of the outlet is known. For practice of 
the operation 603, the reader could refer to the books 
mentioned above; 

- in the course of operation 604, the unique address 
of the receiver 111 is determined: it is representative, in 
the database 107, of the identifier transmitted by the 
information server 103, to the message server 109, in the 
course of operation 603 ; 

- in the course of operation 605, the message server 
109 transmits, by means of the network 110, the confidential 
information also here called "message certificate", transmit- 
ted in the course of operation 603 to the receiver 111 which 
has said unique address; 

- in the course of operation 607, the confidential 
information, here called "message certificate" is supplied to 



WO 99/23617 PCT/FR98/02348 

the user, either by being displayed on the display of the 
receiver 111, or by being given orally or by telecopy; 

- in the course of operation 608, the user supplies 
to the information server 103, which itself retransmits it to 
the data server 105, a confidential message representative of 
confidential information (for example identical to this 
confidential information or "message certificate"), by means 
of the keyboard of the user terminal 100; 

- in the course of operation 609, the information 
server 103 receives this confidential message; 

- in the course of test 610, the data server 105 
determines whether this confidential message is representative 
of confidential information generated by the data server 105, 
in the course of operation 603, or not; 

- when the result of test 610 is positive, the data 
server 105 validates the transaction carried out, and then 
restarts ; 

- when the result of test 610 is negative, the data 
server 105 transmits an error message and invalidates the 
transaction, by pointing out if desired a failure cause (too 
much time elapsed between the transmission of the confidential 
information and its reception, . . .) and does not carry out the 
transaction . 

Finally, the end of the session is of known type. 
According to a modification (not shown) : 
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- in the course of operation 603, the "message 
certificate" is also determined, by the data server 105, from 
an amount of a transfer and/or a bank account number emitter 
and/or a bank account number receiver, 

- in the course of operation 605, the message server 
109 transmits, by means of the network 110, a confidential 
information and the amount of the transfer, in the clear and, 
more generally, information representative of the transaction 
carried out (product or service acquired and quantity in- 
volved) ; and 

- in the course of operation 607, the confidential 
information as well as the amount are supplied to the user who 
verifies the integrity of the amount of the transfer taking 
place . 

In Figure 7, there is seen a sequence of operations 
performed by the elements shown in Figures 2 and 3, in an 
application of the invention to electronic in-line payment, in 
the case of a service without a contract: 

- following a session-opening operation, not shown, 
between the user terminal 100 and the information server 103, 

- in the course of operation 700, the information 
server 103 attributes a secret unique session numeral; 

- in the course of an operation 701, the information 
server 103 receives from the user terminal 100, an identifica- 
tion ; 
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- in the course of an operation 702, the user of the 
user terminal 101 selects the goods or services which he 
desires to buy, then institutes a payment procedure (see above 
with respect to Figure 4) ; 

- in the course of operation 703, the data server 
10 5 receives the payment request from the user terminal 10 0; 

- in the course of operation 704, the user supplies 
to the information server 103 confidential information 
concerning his payment card; 

- in the course of an operation 705, the unique 
address of the receiver 111 is determined: it is representa- 
tive, in the database 107, of the identification transmitted 
by the information server 103 to the message server 109, in 
the course of operation 701; 

- in the course of operation 707, the data server 

105 carries out a request for bank authorization to the server 

106 from a bank where the user has an account to which is 
associated the payment card involved in operation 704. The 
data server 105 supplies the amount of the transaction 
envisaged to the bank server 706. The information server 103 
receives, in turn, from the bank server 706, a payment 
authorization, according to the bank modalities of known type 
which depend in particular on the conventions shared by the 
bank and the client in question and the eventual authorization 
debiting said account (see the protocol known to those in the 
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art under the name "BCAS" for "Bank Card Authorization System") ; 

- in the course of an operation 70 8, the information 
server 103 computes confidential information also called 
"transaction certificate" from: 

, an invariable (the identification, for example) , 
. from a variable to avoid repetitions (session 
number, for example) , 

. from the amount of the transaction and 
. from a time marker (the clock) so as to limit the 
use of a secret time-wise. 

Preferably, he uses a function for irreversibly 
calculating confidential information, which is to say of which 
the input information cannot be retrieved when the output 
information is known. To use operation 708, the reader can 
refer to the books mentioned above. In the course of this 
operation 708, the transaction certificate and the amount of 
the transaction envisaged are sent, by means of the network 
110, to the receiver 111 which possesses said unique address; 

- in the course of operation 709, the confidential 
information, also called "certificate of transaction" is 
placed at the disposition of the user, conjointly to the 
amount of the transaction, in clear, either by being displayed 
on the display of the receiver 111, or by being given verbally 
or by telecopy, which permits the control, by the user, of the 
integrity of the transaction that he carries out; 
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- in the course of operation 710, the user supplies 
to the information server 103, which, itself, retransmits it 
to the data server 105, a confidential message identical to 
(or as a modification, representative of) the confidential 
information constituted by the transaction certificate, by 
means of the keyboard of the user terminal 100; 

- in the course of operation 711, the information 
server 103 receives this confidential message; 

- in the course of test 712, the data server 105 
determines whether the confidential message is representative 
of the confidential information generated by the data server 
105, in the course of operation 708, or not; 

- when the result of test 712 is positive, the data 
server 105 validates the payment carried out, this payment 
being effectively carried out between the bank entities 
according to known techniques, then resumes the operation of 
presenting commercial offers; 

- when the result of test 712 is negative, the data 
server 105 transmits to the user an error message and invali- 
dates the payment, by specifying if desired a malfunction (too 
much time elapsed between transmission of the confidential 
information and its reception, ...) and the payment is not 
carried out . 

Finally, the end of the session is of known type. 
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As a modification of the embodiment shown in Figure 
7, the operation 707 is carried out after all the other 
operations, but before the end of the session. 

In Figure 8, there is seen a sequence of operations 
carried out by the elements shown in Figures 2 and 3, in an 
application of the invention to the electronic in-line payment 
in the case of a subscriber service; 

following the session-opening operation, not 
shown, between the user terminal 10 0 and the information 
server 103, 

- in the course of operation 800, the information 
server 103 attributes a unique secret session numeral; 

- in the course of an operation 801, the information 
server 103 receives from the user terminal 100, an identifica- 
tion; 

- in the course of an operation 802, the user of the 
user terminal 101 selects goods or services of which he wishes 
to have the benefit, then starts a payment procedure (see 
above with respect to Figure 4) ; 

- in the course of operation 8 03, the data server 
105 receives the payment request from the user terminal 100; 

- in the course of operation 805, the data server 
105 carries out, preferably in a secure manner, a request for 
bank authorization to the server 106 from a bank at which the 
user has an account with which is associated the payment card 
involved in the operation 804. It supplies the amount of the 
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transaction envisaged to the bank server 806 as well as the 
data concerning the payment card, these data being preserved 
by the information server 103 on the account of the user of 
the service in question. The information server 103 receives, 
in return, from the bank server 806, a payment authorization, 
according to the bank modalities which depend on the amount 
available in the bank account in question and on the possible 
authorization of debiting said account; 

- in the course of an operation 8 07, the unique 
address of the receiver 111 is determined: it is representa- 
tive, in the database 107, of the identification transmitted 
by the information server 103 to the message server 109, in 
the course of operation 801; 

- in the course of operation 808, the information 
server 103 computes confidential information also called 
"certificate of transaction" (see Figure 7); 

- in the course of operation 809, the confidential 
information, also called "certificate of transaction" is 
supplied to the user, conjointly with the amount of the 
transaction, in clear, either by being displayed on the 
display of the receiver 111, or by being given in an oral or 
telecopied manner, which permits the control of the integrity 
of the transaction by the user; 

- in the course of operation 810, the user supplies 
to the information server 103, which itself retransmits it to 
the data server 105, a confidential message identical to or as 



WO 99/23617 PCT/FR98/02348 

a modification, representative of, the confidential 
information constituted by the certificate of transaction, by 
means of the keyboard of the user terminal 10 0; 

- in the course of operation 811, the information 
server 103 receives this confidential message; 

- in the course of test 812, the data server 105 
determines whether this confidential message is representative 
of confidential information generated by the data server 105, 
in the course of operation 808, or not; 

- when the result of test 812 is positive, the data 
server 10 5 validates the payment carried out, this payment 
being then effectively carried out between the bank entities 
according to known techniques, then resumes the operation of 
presenting commercial offers; 

- when the result of test 812 is negative, the data 
server 105 transmits to the user an error message and invali- 
dation of the payment, by stating if desired a cause of 
failure (too much time elapsed between the transmission of 
confidential information and its reception, ...) and the 
payment is not carried out. 

Finally, the end of the session is of known type. 

As a modification of the embodiment shown in Figure 
8, the operation 805 is carried out after all the other 
operations, but before the end of the session. 

In Figure 9, there is seen a sequence of operations 
carried out by the elements shown in Figures 2 and 3, in an 
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application of the invention to the payment with an electronic 
payment terminal : 

- in the course of operation 915, the user introduc- 
es his payment card into an electronic payment terminal 
( "EPT" ) which constitutes the so-called "user" terminal; 

- in the course of operation 916, the merchant 
acquires the amount of the transaction on said EPT; 

- in the course of operation 900, an opening of the 
session is carried out between the EPT 100, and the informa- 
tion server 103 and a unique and secret session numeral is 
attributed by the communication server 103; 

- in the course of operation 901, the information 
server 103 receives from the EPT 100, information carried by 
the payment card as well as the amount of the transaction in 
progress, and the information server transmits a demand for 
identification of the customer at the bank entity 906 and 
receives this information by return; 

- in the course of operation 907, the unique address 
of the receiver 111 is determined: it is representative, in 
the database 107, of the identification transmitted in the 
course of operation 901; 

- in the course of operation 908, the information 
server 103 computes confidential information also called 
"certificate of transaction" (see Figure 7) ; 

- in the course of operation 909, the confidential 
information, also called "certificate of transaction" is 
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supplied to the user, conjointly with the amount of the 
transaction, in clear, either by being displayed on the 
display of the receiver 111, or by being given orally, which 
permits the control of the integrity of the transaction by the 
user; 

- in the course of operation 910, the user supplies 
to the information server 103, which itself retransmits it to 
the data server 105, a unique confidential message with, or as 
a modif icat ion, representative of, the confidential informa- 
tion constituted by the certificate of transaction, by means 
of the keyboard of the EPT 10 0; 

- in the course of operation 911, the information 
server 103 receives this confidential message; 

- in the course of test 912, the data server 105 
determines whether this confidential message is representative 
of the confidential information generated by the data server 
105, in the course of operation 908, or not; 

- when the result of test 912 is positive, the data 
server 105 validates the payment carried out, this payment 
being then carried out between the bank entities according to 
known techniques; 

- when the result of test 912 is negative, the data 
server 105 transmits to the user an error message and invali- 
dation of the payment, by stating if desired the cause of 
failure (too much time elapsed between the transmission of 
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confidential information and its reception, . . . ) and the 
payment is not effectuated. 

A modification of operation 916 is the acquisition 
by the user of his personal code also called " PIN" (acronym of 
"Personal Identification Number"), before starting operation 
900 . 

Finally, the end of the session is of known type and 
the client recovers his payment card as well as a printed 
ticket bearing the amount of the payment carried out . 

In Figure 10, there is seen a sequence of operations 
performed by the elements shown in Figures 2 and 3, in an 
application of the invention to the electronic in-line 
payment, using a trustee, in the case of a service without a 
subscription, a different application from that shown in 
Figure 7 . 

In this application, the data server 105 is prefera- 
bly located with the message server 109, and forms a portion 
with the latter of the trustee (also called the certifier) . 
By way of example, these two services 105 and 109 are located 
with the telecommunication operator. 

In this application, the operations used are carried 
out successively in the following manner. 

Following a session-opening operation, not shown, 
between the user terminal 100 and the information server 103, 
in the course of an operation 1000, the information server 103 
attributes a secret unique session numeral. In the course of 
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operation 1001, the user of the user terminal 101 selects 
goods or services which he desires to purchase, then initiates 
a payment procedure, in cooperation with the information 
server 103 . 

The information server 103 thus receives, in the 
course of an operation 1032, a payment request, and, in 
particular, an amount of the transaction envisaged. 

In the course of an operation 1003, the user of the 
user terminal 101 supplies an identification and, in the 
course of an operation 1004, the information server 103 
receives this identification from the user terminal 100. 

In the course of an operation 1005, the information 
server 103 transmits a payment request as well as the identi- 
fication of the user and the amount of the transaction 
envisaged, to the data server 105, by means of the telecommu- 
nication line 106. In the course of a test 1006, the data 
server 105 determines whether the amount of the transaction 
envisaged is greater than a predetermined amount. 

When the result of test 1006 is negative, an 
operation 1008 is carried out (see below) . 

When the result of test 1006 is positive, a data 
server 105 searches, in the course of an operation 1007, in 
its database of subscribers, the number of the bank card 
corresponding to the identification transmitted and carries 
out a request for bank authorization to a server of a bank 
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where the user has the account with which is connected this 
payment card. 

In the course of a test 1009, the server of the bank 
determines, according to rules known per se, whether the 
transaction envisaged is authorized or not. When the result 
of the test 1009 is negative, a refusal is indicated to the 
user, in the course of an operation (not shown) , by means of 
the information server 103 and the user terminal 101. 

When the result of the test 1009 is positive, the 
data server 105 receives, in the course of operation 1008, 
from the bank server, a payment authorization, according to 
known bank procedures . 

In the course of operation 1008, the unique address 
of the receiver 111 is determined: it is representative, in 
the database 107, of the identification transmitted by the 
information server 103 to the message server 109, in the 
course of operation 1001. 

Then, the operations 708 and the following illus- 
trated in Figure 7, are carried out. 

However, in the embodiment shown in Figure 10, when 
the result of the test 712 is positive, the data server 105 
validates the payment carried out, then returns a payment 
approval to the server 103, accompanied by the address of the 
subscriber to the telephone service (at the end of the 
telephonic computation period of the trustee, this payment 
being effectively carried out between the bank entities of the 
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purchaser and the trustee, according to known techniques. The 
same is true at the end of the payment period, the trustee 
carries out the payment to the merchant and subtracts as the 
case may be the service charge) , then resumes the operation of 
presenting commercial offers. 

In return, when the result of the test 712 is 
negative, the data server 105 transmits to the user an error 
message and invalidation of the payment, stating as the case 
may be a cause of a failure (too much time elapsed between the 
transmission of confidential information and its reception, 
...) and the payment is not carried out. 

Finally, the end of the session is of known type. 

In Figure 11, there is seen a diagram of the payment 
system according to the present invention using payment 
protocols known as "SET" (acronym of "Secure Electronic 
Transaction") . So as better to understand this type of 
transaction, the reader should refer to version 1.0 of the 
specifications of the SET protocol, published May 31, 1997. 
This version is incorporated here by reference. 

It will be recalled that the VISA (trademark) and 
MASTERCARD (trademark) enterprises are associated with each 
other to define a common standard of payment by bank cards 
through open networks: the SET protocol. 

The principal objectives of this SET protocol are as 

follows : 
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- to render easy and rapid the development of 
electronic commerce, 

- to create confidence in the network between the 
purchaser and the seller by means of an exchange of certifi- 
cates, 

- to separate the Internet network from the bank 

network, 

- to guarantee the integrity and confidentiality of 
the transactions thanks to the encoding of the messages, 

- to ensure interoperability between open bank 
standard and non-proprietary solutions, 

- to carry out already existing standards. 

The principles and operation of the SET protocol 
rely on three important principles: 

- the Payment Gateway, which ensures that the 
Internet domain will be sealed off from the bank domain, 

- the certificates which are public keys which serve 
to authenticate the different actors entering into the 
transaction (client-bearer, merchant, Payment Gateway) , 

- the trustee who certifies the public keys which 
then become certificates. 

The whole of the SET system rests on the use of 
certificates. The trustee certifies the public keys of the 
client-bearers, of the merchants and the Payment Gateway. The 
trustee is itself the object of a certification. There is 
thus a cascade system, wherein a trustee at a higher level 
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certifies a trustee at a lower level. This system is hierar- 
chical and, at the summit, is located the supreme authority 
which is known by all and which does not to be authenticated. 
The interest in such a hierarchy is to delegate the work of 
certification, whilst guaranteeing the whole of the system. 

1) For his enlistment, the client obtains his key by 
using a specific software which will be integrated into the 
navigator, known to those in the art under the name of 
"browser". He enters his bank card number into the program. 
The latter gives a receipt which the client must carry to one 
of the VISA or MASTERCARD enterprises, the latter returning a 
certificate containing a key which will remain inscribed in 
the software stored at the client station. 

2) For the transaction: 

- the bearer consults the catalog on the server and 
makes his choice. The merchant server then sends to the 
client a virtual order (Order Information "OI") which contains 
the information on the product and the amount, as well as the 
certificate and public key of the merchant and of the Payment 
Gateway; 

- the client sends to the merchant server his 
certificate and his public key. Therefore, having each 
other's certificate, they can proceed to their mutual identi- 
fication; 

- the client then creates a PI (acronym of "Payment 
Information"). This PI contains information relative to the 
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bank system, which is sent exclusively to the Payment Gateway. 
For this reason, the client numbers the PI with the public key 
of the Payment Gateway. This operation concluded, the client 
assembles the 01 and the PI and signs the whole with his 
private key. This package is sent to the merchant server. 

- the merchant server is able to verify the validity 
of the package from the public key of the client. He can thus 
be sure that the client has not modified the 01. However, it 
is impossible for him to read the information of the PI. The 
commercial server signs in his turn, the package received and 
transmits it to the Payment Gateway. The order information 
emitted by the merchant server and the payment order emitted 
by the bearer are connected in an inseparable manner by means 
of this dual signature. 

- the Payment Gateway verifies the certificates, the 
dual signature and the agreement between the order information 
(OI) and the payment order (PI) . It thus serves as an 
interface with the traditional world of card payment. 

If the usual conditions of card payment are ful- 
filled, it confirms the transaction to the merchant server. 

The advantage of this protocol is that, thanks to 
the certificates, the client and the merchant server can 
mutually identify themselves before even carrying out the 
transaction . 

The drawbacks of these protocols are: 
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- the multiplication of the trustees is difficult to 

manage , 

- protection is only by software, 

- the certificates are stored on machines of the 
client's. Hence, strictly speaking, the authentication does 
not concern the client but rather his computer. 

With respect to Figure 11, there will be seen 
practice of the invention in the framework of the payment 
solution SET. This protocol uses a tripartite relationship, 
client computer 1101 - merchant server 1102 - Payment Gateway 
1103. Each of these entities receives SET certificates 
generated by a certification manager (not shown) . At the date 
of filing the present application, the SET protocol does not 
permit reliable authentication of the purchaser, except by 
installing a memory card reader. 

In a first instance, a client institutes the 
purchase by selecting goods or services on a commercial site 
of a computer network. The client then triggers the payment 
by validating the purchase (for example by clicking on a 

"purchase validation" icon) . 

Then the client must type in a static password to 

initiate payment, by decoding the SET certificate stored on 

his computer. 

According to a variation (not shown) , an operative 

mode consists in not using a certificate (according to the SET 

protocol operating in "2 Kp" mode) . In this case, no certifi- 
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cate is exchanged and only authentif ication of the client is 
necessary, according to the present invention (below) . 

The exchanges "client computer - shopping server - 
Payment Gateway" are initiated so as to determine the parame- 
ters of communication (frames called " PWakeUp" , " PInitReq" and 
" PInitRes" in the specification of the SET protocol) , the data 
contained in the client's certificate are recovered at the 
level of the Payment Gateway (frame Preq(PAN)) which decode 
them and address an authentication request of the client to 
the authentication server 1104. 

This server authenticates the transaction by 
computing an authentication code of the transaction ("CAT") 
and sends it, by means of a short message (known to those in 
the art as "SMS", acronym for "Short Message System") to the 
client identified by his corresponding mobile phone number 
1105, in the subscriber database, to the identification 
decoded in the SET client certificate which is received by the 
Payment Gateway . 

According to a modification (not shown) , the 
telephone number of the subscriber, on the second network, is 
included, coded, in a field of the SET client certificate. In 
this case, it is not necessary to have a database carrying out 
the correspondence between the mobile number of the subscriber 
and his identification. Upon reception of the client certifi- 
cate on the Payment Gateway, the latter decodes the certifi- 
cate and uses directly the number of the mobile phone con- 
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tained in the certificate to address the authent if icat ion code 
of the transaction of the client. This principle of operation 
facilitates the interoperability between the telecommunication 
and bank operators . 

The client then receives an authentication code of 
the transaction in the form of a confidential message, 
according to the present invention. He acquires this message 
on his computer in an authentication field provided for this 
purpose . 

The authentication code of the transaction is then 
sent either by means of the shopping server, directly to the 
Payment Gateway, or is submitted to the authentication server 
which validates it and decodes the payment. 

According to a modification (not shown) , the client 
receives in the form of a short SMS message the amount of the 
transaction in clear, associated with the identification code 
of the transaction so that he verifies the integrity of the 
amount of his purchase . 

In Figure 12, there is seen the use of the invention 
in the field of the solution of payments known to those in the 
art as Globeld (trademark) or Kleline (trademark) . 

This system relies on the principle of virtual 
money-carrier (VMC) . It thus is a matter of having the client 
first deposit and then be debited according to his purchases. 
The transactions are totally transparent to the client. This 
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is the only case in which the client and shopping server have 
no direct relationship. 

The use the Globeld system, it suffices to 
telecharge an interface (called "Klebox", trademark of 
Kleline) and to open an account addressing it to GlobeOnLine 
(trademark) or Kleline. The client can open several virtual 
money-carriers . 

Opening the virtual money-carriers can take place 
instantaneously on-line. In this case, the bank coordinates 
are encoded (RSA technology) and sent by means of the Internet 
network. They can also be transmitted by telephone, telecopy 
or mail. In response, the service using this solution 
attributes to the client a money- carrier number and a confi- 
dential code. 

Upon opening the virtual money-carrier, the client 
carries out two operations: he gives his bank card number and 
the other necessary information, then pays, on the virtual 
money-carrier, an amount of his choice. The client can 
consult the condition of his virtual money-carrier and deposit 
new sums of money at any time. It is also possible for him to 
withdraw all or part of what he has. 

The virtual money-carrier is connected to one or 
several bank cards. The client has the possibility of 
personalizing his bank cards, by giving them names, so as not 
to confuse them. Double -checking techniques ensure that a 
card corresponds only to a single person. 
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The transaction type takes place as follows: 

- the client browses on the shopping server. When 
a product interests him, he clicks above and declares himself 
ready to purchase by sending a purchase order to the shopping 
server ,- 

- the latter emits a receipt with a destination to 
the Globeld server. This receipt comprises on the one hand, 
the nature and amount of the purchase and, on the other hand, 
the number of the virtual money-carrier of the merchant. It 
is all signed from the confidential code of this latter. 
Then, Globeld verifies this ticket (the shopping server is 
thus authenticated) and this fact appears on the screen of the 
computer of the client; 

- the client electronically signs this ticket with 
his secret code and returns it to Globeld; 

- Globeld then authenticates the client with his 
public key and validates the transaction. If the client has 
decided to pay with his card, the validation takes place at 
the bank network with, if desired, a request for authorization 
to the bank card network. If the client uses his virtual 
money-carrier, the latter is debited with the amount of the 
transaction; 

- the client's computer finally emits a cash voucher 
to the shopping server (validating the transaction) which then 
sends the merchandise. 
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All the communications in the transactions are coded 
with the help of asymmetric keys of 512 bits. 

The drawbacks of this protocol are that, for the 
merchant, it is necessary to have a virtual money- carrying 
number and a confidential code. 

With regard to Figure 12, it will be noted that, in 
a particular embodiment of the present invention, used in 
combination with the Globeld solution: 

1. The client computer 1201 selects goods and 
services on the shopping site 1202 and validates its purchase. 

2. The shopping server then requires a "ticket" 
(receipt) from the client computer {"GRT1" exchange in Figure 
12) . 

3. The client computer submits, in its turn, this 
request to the intermediation server 1203 ("GRT2"). 

4. The authentication phase is then used (" CAC/CAR" 
exchange) with a dynamic code called "TID" (for "Transcode 
Identifier") generated by the intermediation server and sent 
by means of a telecommunication network, in the form of a 
short SMS message, addressed to the mobile phone 12 04 whose 
number corresponds to the subscriber identified by the 
"userld" identification of the client, stored in the database 
1206 of the authentication server 1205. 

According to a modification (not shown) , the TID 
dynamic code is calculated and sent directly by the telecommu- 
nication operator. In this case, the intermediary server 
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transmits the information necessary for calculating the TID 
dynamic code, to the telecommunication operator. 

According to another modification (not shown) , the 
client receives, in the form of a short SMS message, the 
amount of the transaction, in clear, associated with the 
authentication code of the transaction so that he can verify 
the integrity of the amount of his purchase. 

5. The transaction authentication code received by 
the mobile phone of the client is acquired on the computer 
used by the client and the information as to the transaction 
are added to the TID dynamic code and are sent to the interme- 
diary server ("IS") which verifies the validity of the TID 
dynamic code and validates, with the authentication server, 
the transaction authentication code received from the client's 
computer . 

6. The intermediary server thus delivers a receipt 
( " GPT 3" exchange) to the client's computer, which then sends 
it to the shopping server ("GPT 4" exchange) . 

The "SSL" (Secure Socket Level) protocol is a 
secured communication protocol between two entities. The 
reader can refer to the version 3.0, of the specifications 
setting forth this protocol, the version of March, 1996. This 
version is incorporated herein by reference. 

The SSL protocol is a protocol developed by 
NETSCAPE. The initial negotiation phase permits authentica- 
tion of the shopping server and, optionally, of the client. 
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Once this phase is concluded, the exchanges are encrypted with 
the key generated by the client's computer. 

Thus, the security protocol SSL encodes the data, 
authenticates the server and ensures the integrity of the 
messages for a TCP/IP (Transport Telecommunication Proto- 
col/Internet Protocol") connection: 

. particularly, the encoding of the data (RC4), 
. the authentication of the shopping server for the 
client (different methods of asymmetric coding) , 
. the integrity of the data (MD2 , MD5 ) , 
. the non-renounceability of the exchanges, and 
. optionally, the authentication of the client for 
the server. 

As a practical matter, the SSL protocol gives a 
security of the "handshake" type, to begin any TCP/IP connec- 
tion. The handshake permits, for the client's computer and 
the shopping server, to agree on the level of security to be 
used and to fulfill the conditions of authentication for the 
connection. Then, the sole role of the SSL protocol consists 
in encoding and decoding the flow of octets of the application 
protocol taking place (for example "HTTP", acronym for 
"HyperText Transfer Protocol"). This means that all the 
information contained in the HTTP requests and responses are 
entirely encoded, including the URL (acronym for universal 
resolution location) that the client's computer requires, the 
content of all the submitted formulas (such as the credit card 
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numbers) , any information relative to the HTTP access authori- 
zation (names of the user and password) and all the data 
returned by the server to the client's computer. 

SSL certificates can be edited by an entity 
accredited both by the client and the merchant. In the usual 
manner, the client does not possess a certificate. 

There is seen, in Figure 13, in a particular 
embodiment of the present invention, in combination with the 
payment scheme SSL, that: 

- the client computer 13 01 first initiates the 
purchase, by selecting its goods or services on the shopping 
site 1302 or the desired shopping mall; 

- the start of payment is activated by a validation 
of the client's purchase (for example, pushing a "purchase 
validation" key) ; 

- then the communication SSL opens with an exchange 
between the client computer 1301 and the shopping server 1302, 
of frames which permit regulating the parameters of the 
communication (protocol version, session number, retained 
algorithm coding, compression method, reciprocal authentica- 
tion and use or not of algorithm-based coding with public or 
private keys) . A master key is exchanged, encoded, with the 
private key of the merchant, the client's computer decoding it 
with the public key of the merchant and then generating a 
session key based on this master key. This operation is 
reproduced on the shopping server so as to have, for both 
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sides, the same session key. Said session key serves to 
encode the communication between the client's computer and the 
shopping server; 

- the client keys in a "Userld" identification 
permitting identifying it for the shopping server or the 
shopping mall; 

the shopping server or the mall transmits the 
"Userld" identification and the parameters of the transaction, 
to the telepayment software 13 03 which computes the authenti- 
cation code of the transaction and sends it, by means of a 
short SMS message, to the client identified by his mobile 
phone number 13 04 corresponding to this "Userld" identifica- 
tion, in the subscriber base 1305 of the authentication server 
1306 ; 

A modification consists in using the SSL certificate 
on the client's computer, particularly by incorporating 
therein, during its generation by the accreditation server, 
the mobile number of the user, the bank card number and the 
limit date for validity of the bank card. During exchanges of 
the beginning of the SSL connection, the shopping server 
decodes the information of the client's certificate and 
particularly the mobile number which serves to send the 
authentication code of the client transaction. In this 
modification, it is possible to avoid the subscriber database 
in the authentication server. 
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Another modification consists in that the client 
sends directly the bank card number and the limit of date of 
the validity of this latter. In this case, the shopping 
server computes the authentication code of the transaction and 
recovers the mobile number of the client in the database 
indexed by bank card number. Then the authentication code of 
the transaction is sent to the client by means of his mobile 
phone . 

- the client identified by his mobile phone receives 
the authentication code of the transaction on his mobile 
phone, then acquires it in the authentication field on his PC 
screen ; 

- the authentication code of the transaction is sent 
by means of the shopping server or the mall, then to the 
authentication server which thus validates the authentication 
code of the transaction and triggers payment. 

- a modification consists in adding, in addition to 
the amount of the purchase, the references of the product 
purchased, the quantities, in clear, with the authentica- 
tion code of the transaction by sending the short SMS message, 
during the transmission over the mobile phone of the client. 

According to a modification (not shown) of each of 
the embodiments of the present invention, the shopping server 
carries out a selection operation of the transmissions which 
are securitized according to the present invention. In the 
course of this operation of selection of transmissions, as a 
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function of predetermined criteria, the transmissions are 
classified into two groups, one relating to the so-called "to 
be secured" transmission and the other to the so-called 
"normal" transmissions. The transmissions "to be secured" are 
processed as described above, whilst the so-called "normal" 
transmissions require no more than an operation of transmis- 
sion over a communication support. The so-called "normal" 
transmissions are in fact according to the processes known to 
the prior art . 

For example, in the case of the embodiment shown in 
Figure 10, the operation of selection can be carried out in 
the course of the operation 1005 or in the course of operation 
1008, by taking as selection criteria the amount of the 
transaction, and by comparing it to a transaction limit 
amount. The so-called "to be secured" transmissions are thus 
those with which are associated transaction amounts greater 
than the limit amount. 

The different embodiments of the present invention 
(authentication, certification or the message and electronic 
on-line payment) can be combined so as to produce specific 
applications corresponding to the requirements of the operator 
of the service . 

The invention is particularly applicable: 

- to the control of access to a computer site (for 
the internal security of an enterprise, for teleworking in an 
enterprise, for access to protected databases ...), 
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- to the transmission of confidential information to 
the proper parties (for electronic mail, secured and/or 
registered telecopies, for the certification estimates or of 
order information . . . ) . 

- to the on-line payment (for electronic commerce, 
for the distribution of information or of software, ...), 

to the certification of messages (for long 
distance declaration, for home banking, . . . ) , 

- to the transmission of personalized commercial 
propositions (for secured letter boxes, ...), 

- to the taking of bets on-line (for lotteries or 
casinos, race courses, ...), 

- to the control and reservation of a television 
program (for pay-per-view television) , 

- to sending information or to remote charging for 
software on demand, 

- for the on-line reservation of services or 

- to opening of virtual electronic account. 
Several of these applications are described in 

detail below, by way of example. 

For use as access control using the present inven- 
tion, the network used can be a network known as "Intranet" or 
a worldwide network known as "Internet". The object of this 
application of the invention is to be certain that the user is 
an entitled person. 

In this application: 
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- the user identifies the service, 

- he identifies himself by supplying an identifica- 
tion, 

- he receives, by means of a second communication 
support (for example portable phone or pager) , a single use 
password, 

- he keys this single use password onto the keyboard 
of his terminal, then 

- if the authentication is made, he has access to 
the resource in question (for internal safety of an enter- 
prise, for teleworking . . .) . 

For an application for electronic courier 
transmission or registered telecopying using the present 
invention, the network used can be a switched network. The 
objectives of this application of the invention are: 

- to ensure that the person to whom the secured 
message is addressed (the "destination") , receives it properly 
and 

- to deliver a message certificate to the sender and 
to the addressee of this secured message. 

In this application: 

- the user who emits the secured message composes 
the number of a specialized service for using this applica- 
tion, 

- he identifies himself by supplying an identifica- 
tion, 
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- he keys in the coordinates of the destination user 
(telephone number, preferably portable, address, telecopier, 

. . . ) , then 

- he delivers his secured message (oral, written 
and/or by means of a telecopier) . 

- he receives, by means of a second communication 
support (for example a portable telephone or pager) , a message 
certificate, 

- he keys this message certificate into the keyboard 
of his terminal, in the first network, 

- this message certificate is verified, 
then the addressed user: 

- is informed that a secured message awaits him 
(this operation is carried out by any known means (telephone, 
telecopier, courier, pager, electronic courier ...), 

- he composes the number of the specialized service 
for using this application, 

- he identifies himself by supplying an identifica- 
tion, 

- he receives, by means of a second communication 
support (for example portable telephone or pager) , a message 
certificate, and 

- he types this message certificate into the 
keyboard of his terminal, on the first network, 

- this message certificate is verified, 
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the destination user of the secured message 
receives this latter, 

- the sending user is informed that the secured 
message has been retrieved by the destination. 

The specialized service preserves a record of each 
of these certificates thus delivered. 

For an application to teller declaration (which is 
to say remote declaration) using the present invention, the 
first network used can be a worldwide network known as the 
"Internet". The object of this application of the invention 
is to permit an immediate official administrative declaration, 
to deliver a receipt to the user and to be assured of the 
identity of the declarant. 

In this application: 

- the user who emits the declaration is connected to 
an administrative service suitable for this application (see 
below) , 

- he identifies himself by supplying an identifica- 
tion, 

- he carries out said declaration or fills out an 
administrative form, 

- he receives, by means of a second communication 
support (for example portable telephone or pager) , a message 
certificate, and 

- he keys this message certificate into the keyboard 
of his terminal. 
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For an application of the invention to on-line 
purchases or payments, using the present invention, the 
network used is a worldwide network known as the "Internet" 
and a software used by the user's computer permits encrypting 
an account number or bank card number (for example with 
encryption software " SSL" or "SET") . The object of this use 
of the invention is to be able to pay on-line by authenticat- 
ing the person who carries out the transaction. 

In this application: 

- the user contacts a "shopping mall", which is to 
say an assemblage of merchants supplying goods, services or 
information, 

- he identifies himself by supplying an identifica- 
tion, 

- he selects a transaction he wishes to carry out, 

- he indicates a payment mode (bank card, for 

example) , 

- he sends to the server of the mall his card number 
and the date of expiration of this card, under the encryption 
protocol SSL, 

- the server generates a transaction certificate to 
which it associates the amount of the transaction, in clear, 

- the user receives, by means of a second communica- 
tion support (for example a portable telephone or pager) , this 
transaction certificate and the amount of the transaction in 
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- he verifies the integrity of the amount, 

- he keys these elements into the keyboard of his 
terminal, and 

- the transaction is then carried out according to 
known banking procedures . 

For an application using the present invention in 
which the information (text, images, graphics, sounds) and/or 
the software, are supplied on demand, the network used is the 
worldwide network known as the "Internet". The object of this 
application of the invention is to cause the person who has 
access to a value-added resource to pay for it and to give him 
the required service (transmission of information or software) 
in real time. 

In this application, 

the user contacts the service supplier, 

- he identifies himself by supplying an identifica- 
tion, 

- he chooses information or software which interests 

him, 

- the service supplier indicates the price of the 
service in question, 

- the user confirms his desire to purchase it, 

- the user receives, by means of a second communica- 
tion support (for example portable telephone or pager) , a 
certificate of the corresponding transaction, of the amount of 
the transaction, in clear, and 
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- he verifies the integrity of the payment, 

- he keys the certificate of transaction into the 
keyboard of his terminal, 

- the transaction certificate is verified, 

he receives the information or software in 

question, and 

- he is billed on the monthly bill of his telecommu- 
nication service operator, or by his supplier of access to the 
network, for example, as a function of his use. 

For remote betting using the present invention, the 
network used is the worldwide network known as the "Internet". 
The object of this application of the invention is to make 
sure that the person remotely betting is entitled to do so and 
that he has first done the necessary to place this bet. 

In this application: 

- the user opens and deposits in his account with 
the service operator, either by depositing a sum in the 
account from any sales point or by check, or by using the same 
method as in the applications of the invention recited above 
for on-line payment, 

- then, when the user wishes to take part in a game 
or place a bet : 

- he identifies himself by supplying an identifica- 
tion, and/or a subscriber number, 

- he selects a game in which he desires to play, 
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- the user receives, by means of a second communica- 
tion support (for example portable telephone or pager) , a 
certificate of the associated transaction of the bet, in 
clear, and 

- he verifies the play and the bet. 

he keys the transaction certificate into the 
keyboard of his terminal, 

- the transaction certificate is verified (game, 
bet, numbers, a combination) . 

For an application in supplying personalized offers 
using the present invention, the network used is the worldwide 
network known as the "Internet". The object of this applica- 
tion is to identify the requirements of the consumer upstream 
in advance of the purchase and to give him personalized offers 
corresponding to his requirements. 

In this application, during its first connection: 

- the customer gets in touch with the service, 

- he identifies himself by supplying an identifica- 
tion and/or a subscriber number, 

- he receives, by means of a second communication 
support (for example portable telephone or pager) , a single 
use password, 

- he keys the single use password into his keyboard 
of his terminal, and 
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- he fills out a marketing questionnaire permitting 
determining the types of commercial propositions to be sent to 
him. 

When a commercial proposition corresponding to his 
requirement is sent to him, the customer receives a "alert" 
message, by means of the second communication support. In the 
course of this second connection: 

- the customer then gets in touch with the service, 

- he identifies himself by supplying an identifica- 
tion and/or a subscriber number, 

- he receives, by means of a second communication 
support, a message certificate, 

- he keys the message certificate into the keyboard 
of his terminal, 

- he has access to the personal and confidential 
mailbox which contains the commercial proposition, 

- he studies the proposition. 
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CLAIMS 

1. Process for transmission of a secured electronic 
message, comprising: 

- an operation of receiving by a data processing 
system, from a user, by means of a communication network: 

. the message to be transmitted, 

. an identification of the user, and 

an identification of a destination for said 
message (603 , 604) ; 

- an operation of opening a communication session 
between a remote communication means corresponding to the 
identification of the destination of said message, and the 
information processing system; 

- an operation of generating, by said information 
processing system, of a first so-called "confidential" 
information for single use, which is to that it cannot be used 
except during said communication session; 

and, during said communication session: 
. performing an operation of transmitting, by the 
information processing system, of the first confidential 
information by means of a first transmission support (605) , 

. performing an operation of receiving, by the 
information processing system, said first confidential 
information from a second transmission support different from 
the first transmission support (608) , 



. performing an operation of verifying the first 
confidential information (610) , by said system of information 
processing, and 

. if the first confidential information is verified, 
performing an operation of supplying the secured message, by 
the information processing system, to the remote communication 
means corresponding to the identification of the destination 
of said message. 

2. Process according to claim 1, characterized in 
that it comprises moreover an operation of informing said user 
of the supply of the secured message to said destination. 

3. Process according to any one of claims 1 or 2 , 
characterized in that it comprises moreover an operation of 
authenticating said user. 

4. Process according to claim 3, characterized in 
that said authentication operation of said user comprises: 

- an operation of generating, by said information 
processing system, a second so-called "confidential" informa- 
tion for single use; 

- an operation of supplying to said user, by said 
information processing system, of the second confidential 
information, on a third transmission support (605) , 

- an operation of receiving, by the information 
processing system, of the second confidential information, on 
a fourth transmission support different from the third 
transmission support (608) , 




- an operation of verifying the second confidential 
information (610) by said system of information processing. 

5. Process according to claim 4, characterized in 
that it comprises moreover an operation of delivering to said 
destination a certificate which identifies said user. 

6. Process according to any one of claims 1 to 5, 
characterized in that it comprises an operation of memorizing 
at least one record of at least one operation, in the informa- 
tion processing system. 

7. Process according to any one of claims 1 to 6 , 
characterized in that the first transmission support is a 
wireless support. 

8. Process according to any one of claims 1 to 7/ 
characterized in that the second transmission support is the 
Internet . 

9. Device for transmitting a secured electronic 
message comprising processing means adapted to: 

- receive from a user, by means of a communication 

network : 

. the message to be transmitted, 

. an identification of the user, and 

. an identification of a destination of said message 

(603, 604) ; 

- opening a communication system with a remote 
communication means corresponding to the identification of the 
destination of said message; 



generating a first so-called "confidential" 

information for single use, which is to say that it cannot be 

used but during said communication session; 

and, during said communication session: 

. transmitting the first confidential information by 

means of a first transmission support (605) , 

. receiving said first confidential information from 

a second transmission support different from the first 

transmission support (608) , 

verifying the first confidential information 

(610) , and 

. if the first confidential information is verified, 
supplying the secured message to said destination, by means of 
a transmission support. 

10. Device according to claim 9, characterized in 
that the processing means are adapted moreover to transmit 
information to said user as to the supply of the secured 
message to said destination. 
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